massimopetrossi.com
Issued by Sectigo RSA Domain Validation Secure Server CA
About this certificate
This digital certificate with serial number df:c3:60:73:c9:d8:30:14:08:4e:78:2b:ec:ff:44:cd was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=massimopetrossi.com,OU=Domain Control Validated+OU=PositiveSSL
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): df:c3:60:73:c9:d8:30:14:08:4e:78:2b:ec:ff:44:cdSerial Number (int): 297432297232479012740123669283513255117
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: ca:b9:49:33:1d:eb:fa:a1:6d:3d:5d:74:c0:3b:de:96:cc:a2:ac:2a
AuthorityKeyId: 8d:8c:5e:c4:54:ad:8a:e1:77:e9:9b:f9:9b:05:e1:b8:01:8d:61:e1
Fingerprint (sha1): 3f:02:20:6b:2c:69:9c:ae:f6:0d:76:2e:f9:6b:1b:99:6c:54:84:ee
Fingerprint (sha256): ca:76:22:53:f9:c0:9c:4e:06:c0:8a:2a:8d:c5:73:1c:7d:74:7e:f4:fb:e1:78:99:23:9c:8c:b7:d7:c8:44:82
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCheck the revocation status for certificate massimopetrossi.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for massimopetrossi.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
massimopetrossi.com
www.massimopetrossi.com
www.massimopetrossi.com
Other certificates including the domain name massimopetrossi.com
(limited to 100 certificates)
blog.massimopetrossi.com
blog.massimopetrossi.com
blog.massimopetrossi.com
aprojectfor.massimopetrossi.com
aprojectfor.massimopetrossi.com
blog.massimopetrossi.com
massimopetrossi.com
blog.massimopetrossi.com
massimopetrossi.com
aprojectfor.massimopetrossi.com
blog.massimopetrossi.com
aprojectfor.massimopetrossi.com
massimopetrossi.com
massimopetrossi.com
blog.massimopetrossi.com
aprojectfor.massimopetrossi.com
aprojectfor.massimopetrossi.com
aprojectfor.massimopetrossi.com
blog.massimopetrossi.com
blog.massimopetrossi.com
aprojectfor.massimopetrossi.com
aprojectfor.massimopetrossi.com
blog.massimopetrossi.com
massimopetrossi.com
blog.massimopetrossi.com
massimopetrossi.com
aprojectfor.massimopetrossi.com
blog.massimopetrossi.com
aprojectfor.massimopetrossi.com
massimopetrossi.com
massimopetrossi.com
blog.massimopetrossi.com
aprojectfor.massimopetrossi.com
aprojectfor.massimopetrossi.com
aprojectfor.massimopetrossi.com
Certificate
The complete raw certificate details for massimopetrossi.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGgjCCBWqgAwIBAgIRAN/DYHPJ2DAUCE54K+z/RM0wDQYJKoZIhvcNAQELBQAw gY8xCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE3MDUGA1UE AxMuU2VjdGlnbyBSU0EgRG9tYWluIFZhbGlkYXRpb24gU2VjdXJlIFNlcnZlciBD QTAeFw0xOTA0MTYwMDAwMDBaFw0yMTA0MTUyMzU5NTlaMFcxITAfBgNVBAsTGERv bWFpbiBDb250cm9sIFZhbGlkYXRlZDEUMBIGA1UECxMLUG9zaXRpdmVTU0wxHDAa BgNVBAMTE21hc3NpbW9wZXRyb3NzaS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD37IQnLeesG7t2RrLlzC2OcNd9oqoI5S9k2dCIb2l26rOiaqG2 iEPyPJ+Oo1YnQ3v13YN1ARCUsYaH/1BQ1J+QDO9ZcZGUCcFhBJoP5hPcl2DxLrZb 1pPisMIH9pi1e1a47L32XBh+wIChZtG4lFAhLvmKBwQpl9+fehR3ZL6Pfm5JTBFK HyO2Nth7FKEbvEwMNtV39xN0MdaCVmYlc0wEzh6zb6sOjQOnLXSWlYRoOuO639nX 51yEczpbTPjKqJ5taQdgKfFC+a+Rl2GgyBoKiWtYFLbN7a/AmtCjp8hgyonGERrw GofOtABL7v5TJljBlPVmyER4GzPyWpyygyedAgMBAAGjggMOMIIDCjAfBgNVHSME GDAWgBSNjF7EVK2K4Xfpm/mbBeG4AY1h4TAdBgNVHQ4EFgQUyrlJMx3r+qFtPV10 wDvelsyirCowDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMEkGA1UdIARCMEAwNAYLKwYBBAGyMQECAgcw JTAjBggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwCAYGZ4EMAQIB MIGEBggrBgEFBQcBAQR4MHYwTwYIKwYBBQUHMAKGQ2h0dHA6Ly9jcnQuc2VjdGln by5jb20vU2VjdGlnb1JTQURvbWFpblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQS5j cnQwIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3NwLnNlY3RpZ28uY29tMDcGA1UdEQQw MC6CE21hc3NpbW9wZXRyb3NzaS5jb22CF3d3dy5tYXNzaW1vcGV0cm9zc2kuY29t MIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdwC72d+8H4pxtZOUI5eqkntHOFeV CqtS6BqQlmQ2jh7RhQAAAWooChwcAAAEAwBIMEYCIQDjNbvKsUDXKNo4+AtVHDna ++whmHX7BP/t4grO0rJ0/gIhAO/Vc7HvXEdL7oNg0kYFCZHycnf5Afl5H23G9fR1 tAblAHUARJRlLrDuzq/EQAfYqP4owNrmgr7YyzG1P9MzlrW2gagAAAFqKAoe2gAA BAMARjBEAiBmNwAl0yNIT9+1pJ/lG+BgN882xJiZeWCemtSnM+PBJwIgVFUALpnY n33ncA5FVHfoU9tCKPxMsfiRbKVJzGUJNs8AdgBc3EOS/uarRUSxXprUVuYQN/vV +kfcoXOUsl7m9scOygAAAWooChxLAAAEAwBHMEUCICvJlR3W08XVTHfOIqjMpSvx qcZ3t0GOyPoXkP0TLLoJAiEApG7RhaeZ3hP1Z5cV7CIYVDETtFzhRHX9zPq4Am6w SVYwDQYJKoZIhvcNAQELBQADggEBAF+j79dVimRwbrK6cRX86V19tbXL0ghoUtdL l4IAbRRwFNJ3/xXDSPxb6tiyNtmGUnOuf6BLkw7DSS2481EzKNzWeoq0Gn1Vem8H 1kFCEz7NKR+k35RE/EW8HaLVY1ZpO1OjXbSCW7sNzuAcGQZEm4qUzQ7OTGSSEGVY +W0BSkuEYyAbg8CXIMmr8EaI/VJ2WHIoxRRLD0V6VmJUZy11qDca6YaBJwmpYI5g 4UwFMV4ntE5aNu+xxmJ01aHNMlSrXUOUJqgTvIYfbD+UV0K3iqHOUgCrrhrk9Its I4ydcTAO8JYdeMyX1k51ZrRXFF5dL2yTo/KeGMiWULZpR3cvo68= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9+yEJy3nrBu7dkay5cwt jnDXfaKqCOUvZNnQiG9pduqzomqhtohD8jyfjqNWJ0N79d2DdQEQlLGGh/9QUNSf kAzvWXGRlAnBYQSaD+YT3Jdg8S62W9aT4rDCB/aYtXtWuOy99lwYfsCAoWbRuJRQ IS75igcEKZffn3oUd2S+j35uSUwRSh8jtjbYexShG7xMDDbVd/cTdDHWglZmJXNM BM4es2+rDo0Dpy10lpWEaDrjut/Z1+dchHM6W0z4yqiebWkHYCnxQvmvkZdhoMga ColrWBS2ze2vwJrQo6fIYMqJxhEa8BqHzrQAS+7+UyZYwZT1ZshEeBsz8lqcsoMn nQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 297432297232479012740123669283513255117 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Domain Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PositiveSSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'massimopetrossi.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 31297491822971549390545483434487322705973019563653591553535422708580085592468705614977239134882819771465812123050864433172057987930431807871086126782830830751125757789714978932539272473906437114718981745210286955215459642131982782120834877639203262235748436009684563373036210227450046041579842794445685523779582293023182506538768628453999026038457410738158683606911882995609233173947557894418652952564502997797219572861111294675361137517747412904198505047608984138408806106889374578595882140929617511522732704495211330012913875635029143667590030793731841938936439163984377631508349050599169080910577531308189902120861 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d8c5ec454ad8ae177e99bf99b05e1b8018d61e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cab949331debfaa16d3d5d74c03bde96cca2ac2a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'massimopetrossi.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.massimopetrossi.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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